RISE SICS AB RISE SICS AB RISE SICS AB This document defines a profile of the ACE framework for authentication and authorization. It uses the IPsec protocol suite and the IKEv2 protocol to ensure secure communication, server authentication and proof-of-possession for a key bound to an OAuth 2.0 access token. The profile also defines an alternative key management approach to establish IPsec Security Associations using Ephemeral Diffie-Hellman Over COSE (EDHOC).